My Bitdefender
  • 0 Shopping Cart

SHARE
THIS ON

Facebook Twitter Google Plus

Exploit.JS.IFrame.A

MEDIUM
MEDIUM
~1 kb
(Exploit.JS.IFrame)

Symptoms

Exploitation will not show any signs. After the attacker will take control the code can have any effect.

Removal instructions:

Please let BitDefender disinfect your files.

Analyzed By

Sorin Ciorceri, virus researcher

Technical Description:

This is a malicious JavaScript, that is part of an attack that took place in second half of May 2008 and is present until now (June 2008).

A visit to any compromised site is enough to get infected with this malicious script. It will test for several components having vulnerabilities, and will insert IFRAME tags that will point to attacker's other malicious scripts.

Vulnerabilities exploited by those scripts are:
(CVE-2007-5601) RealPlayer IERPCtl.IERPCtl.1
(CVE-2007-5722) GLCHAT.GLChatCtrl.1 ActiveX

All those malicious scripts will download and execute trojans on your computer.